CVE Catalog

CVE-2026-21036

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.09%

1th percentile - higher than 1% of all known CVEs

Summary

An improper authorization vulnerability in Samsung Internet prior to version 30.0.0.39 allows local attackers to access sensitive information.

Risk Assessment

A local attacker could access sensitive data stored by the browser, such as passwords or browsing history, posing a risk to user privacy.

Recommendation

It is recommended to immediately update Samsung Internet to version 30.0.0.39 or later to remediate the vulnerability.

Original NVD description (English source)

Improper authorization in Samsung Internet prior to version 30.0.0.39 allows local attackers to access sensitive information.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS